Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225611 6.8 警告 ヒューレット・パッカード - HP Systems Insight Manager における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-1998 2013-03-18 17:08 2012-04-30 Show GitHub Exploit DB Packet Storm
225612 10 危険 マイクロソフト - Microsoft Windows 8 におけるサービス運用妨害 (リブート) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2558 2013-03-18 17:06 2013-03-13 Show GitHub Exploit DB Packet Storm
225613 7.5 危険 レッドハット - JBoss EAP および EWP における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5629 2013-03-18 14:14 2013-02-4 Show GitHub Exploit DB Packet Storm
225614 7.2 危険 マイクロソフト - Microsoft Windows の USB カーネルモードドライバにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1285 2013-03-18 11:46 2013-03-12 Show GitHub Exploit DB Packet Storm
225615 7.2 危険 マイクロソフト - Microsoft Windows の USB カーネルモードドライバにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1286 2013-03-18 11:44 2013-03-12 Show GitHub Exploit DB Packet Storm
225616 7.2 危険 マイクロソフト - Microsoft Windows の USB カーネルモードドライバにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1287 2013-03-18 11:42 2013-03-12 Show GitHub Exploit DB Packet Storm
225617 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1288 2013-03-18 11:39 2013-03-12 Show GitHub Exploit DB Packet Storm
225618 10 危険 サン・マイクロシステムズ
VMware
日立
ヒューレット・パッカード		 - Oracle Java SE の Java Runtime Environment (JRE) コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0815 2013-03-14 17:54 2011-06-7 Show GitHub Exploit DB Packet Storm
225619 5 警告 アップル
サン・マイクロシステムズ
ヒューレット・パッカード
VMware
日立
レッドハット		 - 複数の Oracle 製品の Java Runtime Environment における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4470 2013-03-14 16:56 2011-02-15 Show GitHub Exploit DB Packet Storm
225620 9.3 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player の ExternalInterface ActionScript 機能における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0648 2013-03-14 16:21 2013-02-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317441 5.5 MEDIUM
Local 		icq icq ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information. CWE-459
 Incomplete Cleanup 		CVE-2000-0552 2024-02-9 05:12 2000-06-6 Show GitHub Exploit DB Packet Storm
317442 9.8 CRITICAL
Network 		risearch risearch
risearch_pro 		RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, o… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2004-2061 2024-02-9 04:56 2004-07-27 Show GitHub Exploit DB Packet Storm
317443 9.8 CRITICAL
Network 		siemens db4web DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web as a proxy and attempt TCP connections to other systems (port scan) via a request for a URL that sp… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2002-1484 2024-02-9 04:56 2003-04-22 Show GitHub Exploit DB Packet Storm
317444 7.5 HIGH
Network 		adobe acrobat_reader
acrobat 		The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulne… CWE-611
XXE 		CVE-2005-1306 2024-02-9 04:55 2005-06-15 Show GitHub Exploit DB Packet Storm
317445 5.5 MEDIUM
Local 		dump_project dump dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention) by using flock() to lock the /etc/dumpdates file. CWE-667
 Improper Locking 		CVE-2002-1914 2024-02-9 04:24 2002-12-31 Show GitHub Exploit DB Packet Storm
317446 5.5 MEDIUM
Local 		openbsd
netbsd
freebsd 		openbsd
netbsd
freebsd 		tip on multiple BSD-based operating systems allows local users to cause a denial of service (execution prevention) by using flock() to lock the /var/log/acculog file. CWE-667
 Improper Locking 		CVE-2002-1915 2024-02-9 04:24 2002-12-31 Show GitHub Exploit DB Packet Storm
317447 7.8 HIGH
Local 		microsoft windows_2000 Windows 2000 allows local users to prevent the application of new group policy settings by opening Group Policy files with exclusive-read access. CWE-667
 Improper Locking 		CVE-2002-0051 2024-02-9 04:24 2002-04-4 Show GitHub Exploit DB Packet Storm
317448 5.5 MEDIUM
Local 		concurrent_versions_software_project concurrent_versions_software Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which allows local users to cause a denial of service by creating the lock directory before it is created for use… CWE-667
 Improper Locking 		CVE-2000-0338 2024-02-9 04:23 2000-04-23 Show GitHub Exploit DB Packet Storm
317449 5.5 MEDIUM
Local 		qualcomm qpopper qpopper POP server creates lock files with predictable names, which allows local users to cause a denial of service for other users (lack of mail access) by creating lock files for other mail boxes. CWE-667
 Improper Locking 		CVE-2000-1198 2024-02-9 04:22 2001-08-31 Show GitHub Exploit DB Packet Storm
317450 9.8 CRITICAL
Network 		gnome
debian 		evolution
debian_linux 		Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte… CWE-190
 Integer Overflow or Wraparound 		CVE-2005-0102 2024-02-9 03:39 2005-01-24 Show GitHub Exploit DB Packet Storm